Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HHglHe6fBvPrxSxE_h_HdkFr78s.roa
File: HHglHe6fBvPrxSxE_h_HdkFr78s.roa (raw, json)
Hash identifier: 7IWL2UZ2HFLwfIncyMPEgwV3nwCDlELBYMrZE1qc3mA=
Subject key identifier: 1C:78:25:1D:EE:9F:06:F3:EB:C5:2C:44:FE:1F:C7:76:41:6B:EF:CB
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 018C0004C40C99E19F0C549C761BB28612FC
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HHglHe6fBvPrxSxE_h_HdkFr78s.roa
Signing time: Fri 24 Nov 2023 06:29:21 +0000
ROA not before: Fri 24 Nov 2023 06:29:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9009
IP address blocks: 80.71.225.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:00:04:c4:0c:99:e1:9f:0c:54:9c:76:1b:b2:86:12:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Nov 24 06:29:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1c78251dee9f06f3ebc52c44fe1fc776416befcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:ed:0f:24:b8:f3:54:6f:b9:f2:05:08:71:d3:
6b:ec:a8:c6:1c:97:fa:42:24:6a:2b:b0:38:4c:55:
bb:bd:a3:5b:70:6d:84:8a:56:7d:57:6e:be:47:5a:
95:6a:a7:22:d4:fc:97:f2:16:23:06:c8:ef:4f:4d:
05:07:a7:f2:15:f9:11:d1:31:c1:fc:d9:cd:02:77:
6c:48:dc:5b:65:16:a3:e4:8e:55:8f:f6:27:49:21:
e4:cf:f0:b1:81:99:24:6d:3c:e4:29:e1:dc:84:ec:
6a:3f:07:cc:1b:52:cd:98:f3:6c:8b:45:96:ee:50:
27:88:dd:e8:f6:01:7d:72:09:48:fc:79:39:da:bf:
25:0f:84:f9:1a:b5:e9:64:aa:36:80:59:03:f8:26:
c6:3a:45:99:e1:38:7e:94:b4:2b:ef:ae:3a:82:b8:
d9:23:fe:c3:2f:4a:db:6a:59:8d:a3:af:38:e8:ac:
d6:7b:8f:99:f8:71:cb:38:3d:7c:d1:e6:62:55:fb:
0a:0a:c2:65:c6:6b:4b:c2:4a:22:da:4d:04:dc:ac:
68:81:89:2b:00:3c:29:cf:5a:d7:fb:90:9d:4d:c0:
80:a9:c8:87:b1:f0:be:8e:af:ac:96:9a:4d:51:84:
5e:6f:68:a4:ac:05:df:71:02:99:af:2b:8d:99:b7:
36:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:78:25:1D:EE:9F:06:F3:EB:C5:2C:44:FE:1F:C7:76:41:6B:EF:CB
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/HHglHe6fBvPrxSxE_h_HdkFr78s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.71.225.0/24
Signature Algorithm: sha256WithRSAEncryption
51:50:5a:63:86:13:10:01:54:e6:bf:c4:47:e8:78:6e:99:d7:
16:e5:2a:dc:1b:53:6d:b5:f6:4e:d2:65:61:2c:ea:90:a9:f8:
fc:07:ef:8d:a5:e0:ad:d5:e3:4e:34:b4:d0:19:43:f5:d9:dc:
5d:2a:9e:73:44:b2:70:15:39:f2:cd:da:a1:f5:8a:d0:e7:78:
e5:fe:1d:44:77:5a:b4:62:c3:a7:d0:71:dc:00:55:d5:d0:9a:
ce:11:fb:5a:eb:b1:cc:24:99:04:d7:a2:b7:60:37:54:c0:b1:
f9:1d:b2:29:4a:a5:ea:67:22:44:02:d5:b8:a6:fa:56:9d:35:
e0:1e:c5:58:c2:4b:dd:4a:38:3c:91:93:fc:1b:fa:e5:c6:95:
29:89:77:dc:5a:8f:c0:4c:8a:e8:2b:d6:92:f4:0f:a2:d3:9c:
07:48:92:1a:fa:28:e4:25:ac:5c:b4:c7:9f:42:4e:09:dc:32:
83:31:54:4e:ce:c9:07:b3:79:70:3f:65:c1:b9:75:da:60:20:
7e:7e:3e:74:4f:7e:83:a9:85:08:81:3c:9e:c1:ac:b8:f6:48:
f7:18:87:0d:35:f1:39:92:e6:10:4b:60:9f:07:8b:5b:98:1a:
76:b8:47:95:5f:57:b9:34:a1:ae:ee:ab:de:14:91:11:e0:2c:
73:22:5d:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwABMQMmeGfDFScdhuyhhL8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZTUxNjk0YzRkNDZiNGZjYzAyZmFlNzFlNWRiOTQyYTcx
MDhlNDcwHhcNMjMxMTI0MDYyOTIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygxYzc4MjUxZGVlOWYwNmYzZWJjNTJjNDRmZTFmYzc3NjQxNmJlZmNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzu0PJLjzVG+58gUIcdNr7KjGHJf6
QiRqK7A4TFW7vaNbcG2EilZ9V26+R1qVaqci1PyX8hYjBsjvT00FB6fyFfkR0THB
/NnNAndsSNxbZRaj5I5Vj/YnSSHkz/CxgZkkbTzkKeHchOxqPwfMG1LNmPNsi0WW
7lAniN3o9gF9cglI/Hk52r8lD4T5GrXpZKo2gFkD+CbGOkWZ4Th+lLQr7646grjZ
I/7DL0rbalmNo6846KzWe4+Z+HHLOD180eZiVfsKCsJlxmtLwkoi2k0E3KxogYkr
ADwpz1rX+5CdTcCAqciHsfC+jq+slppNUYReb2ikrAXfcQKZryuNmbc2rwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFBx4JR3unwbz68UsRP4fx3ZBa+/LMB8GA1UdIwQY
MBaAFEnlFpTE1GtPzAL65x5duUKnEI5HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQt
MTkxODliM2M5YzdkLzEvSEhnbEhlNmZCdlByeFN4RV9oX0hka0ZyNzhzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ni85ZGI1MjUtMTA1OS00YzA3LWE1YWQtMTkxODliM2M5Yzdk
LzEvU2VVV2xNVFVhMF9NQXZybkhsMjVRcWNRamtjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAUEfhMA0G
CSqGSIb3DQEBCwUAA4IBAQBRUFpjhhMQAVTmv8RH6HhumdcW5SrcG1NttfZO0mVh
LOqQqfj8B++NpeCt1eNONLTQGUP12dxdKp5zRLJwFTnyzdqh9YrQ53jl/h1Ed1q0
YsOn0HHcAFXV0JrOEfta67HMJJkE16K3YDdUwLH5HbIpSqXqZyJEAtW4pvpWnTXg
HsVYwkvdSjg8kZP8G/rlxpUpiXfcWo/ATIroK9aS9A+i05wHSJIa+ijkJaxctMef
Qk4J3DKDMVROzskHs3lwP2XBuXXaYCB+fj50T36DqYUIgTyeway49kj3GIcNNfE5
kuYQS2CfB4tbmBp2uEeVX1e5NKGu7qveFJER4CxzIl2M
-----END CERTIFICATE-----
Generated at Tue Jan 2 09:01:17 2024 by rpki-client on console-ams.rpki-client.org